Log In
Data Security
Personal information and data are some of the most important and sensitive assets our guests, team members and business partners have. We realize and appreciate the trust our stakeholders place in us when they provide us with this information, and we have invested in comprehensive measures to keep that information safe and secure.
Led by Boyd Gaming’s Chief Information Security Officer (CISO) and a dedicated Information Security team, Boyd operates and maintains a comprehensive program designed to safeguard our systems, services, and data from cybersecurity-related threats.
We have a comprehensive Incident Response Plan (IRP) that covers all Boyd operations in the United States and Canada. We review and rehearse this plan with periodic tabletop exercises and make annual updates as necessary.
We have a Security Operations Center (SOC) in operation 24/7 that utilizes leading security technologies and automated processes to protect our network, systems, and databases. These technologies are designed to protect, detect and immediately respond to unauthorized attempts to access our network and systems.
All team members with network access participate in mandatory training sessions to review current cybersecurity threats and best practices.
Monthly information security newsletters are distributed to all Boyd team members with email access, touching on important cybersecurity issues and recognizing team members who report suspicious activity to the Cyber Defense team. These communications are augmented by ad-hoc advisories on current and emerging cyberthreats.
For additional information on how we collect, use, and protect personal information and data, please see our Company’s Privacy Policy.
Led by Boyd Gaming’s Chief Information Security Officer (CISO) and a dedicated Information Security team, Boyd operates and maintains a comprehensive program designed to safeguard our systems, services, and data from cybersecurity-related threats.
Leadership Oversight
- Our CISO and Senior Vice President of Legal Operations and Compliance provide diligent oversight of our data privacy and cybersecurity programs.
- Our Board of Directors and Information Security Advisory Board, consisting of cross-functional leaders within the organization, receive briefings from the CISO at every Board meeting. These briefings cover risks to the business, our security posture, and progress on our cybersecurity initiatives.
- We regularly engage third parties to assess our overall cybersecurity posture, our data security programs, and risks to the business.
Testing Our Systems
- We conduct regular penetration tests of our systems. We also regularly review our source code to identify and address potential cybersecurity risks.
- We hold unannounced, regular cybersecurity exercises with every Boyd Gaming team member with email access. These exercises include email “phishing” simulations that evaluate team members’ correct use of reporting tools. Compliance rates for these exercises are tracked by department, with follow-up training provided to individual team members as necessary.
- We advise our team members on the need for vigilance when receiving phone calls from unknown persons claiming to be Boyd team members and demanding network access.
Staying Vigilant
For additional information on how we collect, use, and protect personal information and data, please see our Company’s Privacy Policy.